Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adobe coldfusion 2016 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2017-11286
Adobe ColdFusion has an XML external entity (XXE) injection vulnerability. This affects Update 4 and previous versions versions for ColdFusion 2016, and Update 12 and previous versions versions for ColdFusion 11.
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
1 Article
9.8
CVSSv3
CVE-2017-11283
Adobe ColdFusion has an Untrusted Data Deserialization vulnerability. This affects Update 4 and previous versions versions for ColdFusion 2016, and Update 12 and previous versions versions for ColdFusion 11.
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
1 Article
7.5
CVSSv3
CVE-2019-8072
ColdFusion 2018- update 4 and previous versions and ColdFusion 2016- update 11 and previous versions have a Security bypass vulnerability. Successful exploitation could lead to Information Disclosure in the context of the current user.
Adobe Coldfusion 2016
Adobe Coldfusion 2018
1 Article
6.1
CVSSv3
CVE-2018-4941
Adobe ColdFusion Update 5 and previous versions versions, ColdFusion 11 Update 13 and previous versions versions have an exploitable Cross-Site Scripting vulnerability. Successful exploitation could lead to information disclosure.
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
7.5
CVSSv3
CVE-2018-4942
Adobe ColdFusion Update 5 and previous versions versions, ColdFusion 11 Update 13 and previous versions versions have an exploitable Unsafe XML External Entity Processing vulnerability. Successful exploitation could lead to information disclosure.
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
7.5
CVSSv3
CVE-2020-3761
ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have a remote file read vulnerability. Successful exploitation could lead to arbitrary file read from the coldfusion install directory.
Adobe Coldfusion 2016
Adobe Coldfusion 2018
6.5
CVSSv3
CVE-2020-3767
ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have an insufficient input validation vulnerability. Successful exploitation could lead to application-level denial-of-service (dos).
Adobe Coldfusion 2016
Adobe Coldfusion 2018
7.8
CVSSv3
CVE-2020-3768
ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have a dll search-order hijacking vulnerability. Successful exploitation could lead to privilege escalation.
Adobe Coldfusion 2016
Adobe Coldfusion 2018
7.8
CVSSv3
CVE-2020-9672
Adobe ColdFusion 2016 update 15 and previous versions versions, and ColdFusion 2018 update 9 and previous versions versions have a dll search-order hijacking vulnerability. Successful exploitation could lead to privilege escalation.
Adobe Coldfusion 2016
Adobe Coldfusion 2018
7.8
CVSSv3
CVE-2020-9673
Adobe ColdFusion 2016 update 15 and previous versions versions, and ColdFusion 2018 update 9 and previous versions versions have a dll search-order hijacking vulnerability. Successful exploitation could lead to privilege escalation.
Adobe Coldfusion 2016
Adobe Coldfusion 2018
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firewall
CVE-2024-35649
stored XSS
CVE-2022-28654
CVE-2020-35153
CVE-2024-27348
CVE-2022-28652
local users
CVE-2017-3506
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »